Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Exim Improper Neutralization of Special Elements Remote Code Execution Vulnerability
Vulnerability Description
Exim Improper Neutralization of Special Elements Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists within the smtp service, which listens on TCP port 25 by default. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-17554.
CVSS Information
N/A
Vulnerability Type
对特殊元素的转义处理不恰当
Vulnerability Title
Exim 安全漏洞
Vulnerability Description
Exim是一个运行于Unix系统中的开源消息传送代理(MTA),它主要负责邮件的路由、转发和投递。 Exim 存在安全漏洞,该漏洞源于Exim 错误地处理了用户提供的验证数据,导致内存损坏。
CVSS Information
N/A
Vulnerability Type
N/A